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5 ELECTRONIC AUTHENTICATION METHOD, ELECTRONIC 
AUTHENTICATION APPARATUS AND ELECTRONIC 
AUTHENTICATION STORAGE MEDIUM 



CROSS-REFERENCES TO RELATED APPLICATIONS 
10 This application claims priority from Japanese Patent Application 

Reference No. 1 1-174066, filed June 21, 1999. 



BACKGROUND OF THE INVENTION 
The present invention relates to a system for transmitting contents from an 

15 information processing apparatus rendering services to an information processing 

apparatus making a request for a service and transmitting input data for the contents from 
the latter information processing apparatus to the former information processing 
apparatus. More particularly, the present invention relates to an electronic authentication 
techniques for authenticating legitimacy of input data for a content access. 

20 In the field of electronic business transactions using the Internet, security 

technologies such as authentication of a true person and prevention of data falsification 
have become increasingly important. As conventional security technologies, a variety of 
efforts have been made such as establishment of a password system, establishment of a 
variety of encryption systems for encrypting data and issuance of an electronic note of 

25 authentication. 

What is really needed are techniques for verifying that the correct response 
data is provided responsive to an access request for contents in a system in which a server 
transmits the requested contents to a client requestor and the client transmits input data to 
the server as the response data responsive to the contents. 

30 

SUMMARY OF THE INVENTION 
According to the invention, techniques for verifying that data input as a 
response to presented contents is true input data for a content access are provided. In 
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specific embodiments, the present invention can provide methods, systems and storage 
media that store a program, each of which implement electronic authentication 
techniques. 

In a representative embodiment according to the present invention, there is 
5 provided an electronic authentication method that comprises a variety of steps, such as a 
step of generating an identifier for contents in a first information processing apparatus 
and storing the identifier in a storage unit. Transmitting the contents and the identifier to 
a second information processing apparatus can also be part of the method. Steps of 
inputting data for the contents in the second information processing apparatus and 

10 transmitting the input data and the identifier from the second information apparatus to the 
first information apparatus can also be included in the method. Further, the method can 
also include authenticating legitimacy of the input data and invalidating the stored 
identifier if the received identifier matches the identifier in the storage unit in the first 
information processing apparatus. 

15 In addition, the present invention relates to a first information processing 

apparatus and a second information processing apparatus which are used for 
implementing the method described above. Furthermore, the present invention 
characterizes a storage medium for storing a program implementing the electronic 
authentication described above. 

20 In a representative embodiment according to the present invention, a 

WWW server program generates an identifier for an access to contents and catalogs the 
identifier in an access control table. The WWW server program then embeds the 
identifier in the contents before transmitting the contents to a client. A WWW browser 
program displays the contents and adds an access number fetched from the contents to 

25 input data for the contents. The WWW browser program then transmits the input data to 
a WWW server. If the identifier added to the input data received from the WWW 
browser program matches an identifier cataloged in the access control table, the WWW 
server program authenticates the legitimacy of the input data and deletes the cataloged 
identifier. 

30 Numerous benefits are achieved by way of the present invention over 

conventional techniques. The present invention can provide a method to verify that data 
input as a response to presented contents is true input data for a content access. The 
present invention can provide a storage medium for storing a program implementing such 
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an electronic authentication method. When personal information, transaction data and the 
like are transmitted from the client 1 to the WWW server 2 in response to contents 
transmitted from the WWW server 2 to the client 1 in a transaction such as Internet 
shopping or an electronic business transaction using the Internet, the present invention 
5 allows the personal information, the transaction data and the like to be verified as input 
data for a legal access to the contents. In addition, the present invention is also capable of 
preventing double transaction data from being transmitted by issuing two or more orders 
for one order form by user's mistake. 

These and other benefits are described throughout the present 
10 specification. A further understanding of the nature and advantages of the invention 

herein may be realized by reference to the remaining portions of the specification and the 
attached drawings. 

BRIEF DESCRIPTION OF THE DRAWINGS 
1 5 Fig. 1 illustrates a diagram showing the configuration of a system for 

rendering services by using the Internet as implemented by an embodiment of the present 
invention; 

Fig. 2 illustrates a diagram showing the data format of an access 
information record stored in an access control table 28 according to a particular 
20 embodiment of the present invention; 

Fig. 3 illustrates a flowchart showing the flow of processing carried out by 
the system implemented by a particular embodiment of the present invention; 

Fig. 4 illustrates a continuation flowchart of the one of Fig. 3 showing the 
flow of processing carried out by the system implemented by a particular embodiment of 
25 the present invention; 

Fig. 5 illustrates a diagram showing the hardware configuration of a 
WWW server employed in a particular embodiment of the present invention; and 

Fig. 6 illustrates a diagram showing the hardware configuration of a client 
employed in a particular embodiment of the present invention. 

30 

DESCRIPTION OF THE SPECIFIC EMBODIMENTS 
The present invention provides techniques for verifying that data input as a 
response to presented contents is true input data for a content access. In specific 
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embodiments, the present invention can provide methods, systems and storage media that 
store a program, each of which implement electronic authentication techniques. 

Techniques for authenticating a true person by an electronic signature 
include encrypting transmitted data by using a private key. With such techniques, 
5 however, it is often necessary to control the private key on the transmitter side. As a 

result, control can become complicated. In addition, in the case of authentication of a true 
person by using an ID or a password, the password may be transmitted through a network 
as a clear text, raising a problem of inability to prevent falsification of the identity of a 
true person by another illegally using a password intercepted during transmission. For a 

10 more detailed description of techniques for authenticating a person by an electronic 
signature used in encrypting transmitted data by using a private key, further reference 
may be had to a Japanese Patent Laid-open No. Hei 10-32570, the entire content of which 
is incorporated herein by reference for all purposes. 

In systems using the Internet, a client generally transmits a request for 

1 5 contents to a WWW (World Wide Web) server. In response to this request, the WWW 
server transmits the requested contents to the client, which then displays the contents on a 
display unit. When the client inputs data for the contents and transmits the input data to 
the WWW server, the WWW server processes the data received from the client. The 
client is capable of copying the contents with ease. Thus, it is quite within the bounds of 

20 possibility that an illegal operation is carried out on copied contents. For example, a copy 
of the contents is extracted and reused, or another user falsifies data through a content 
screen and transmits the falsified data to the WWW server. 

Embodiments according to the present invention that can overcome many 
such limitations of conventional methods will now be described by referring to diagrams 

25 as follows. 

Fig. 1 is a diagram showing the configuration of a system for rendering 
services by using the Internet as implemented by a specific embodiment. As shown in 
Fig. 1, the system comprises a client 1, a WWW server 2 and the Internet 3 which serves 
as a network connecting the client 1 and the WWW server 2 to each other. 
30 As shown in Fig. 5, the hardware configuration of the WWW server 2 

comprises a storage unit 21, a central processing unit (CPU) 22, a communication- 
network interface 23, a content-DB interface 24, an access-control-table interface 26 and 
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a temporary storage unit (memory) for storing a WWW server program 25 which are 
connected to each other by a bus 27. 

Storage unit 21 is used for permanently storing programs and data used in 
the WWW server 2. The storage unit 21 is implemented typically by a hard disc and a 
5 floppy disc. The CPU 22 executes overall control of the components composing the 
WWW server 2 and carries out processing. The communication-network interface 23 is 
an interface for handling exchanges of data with the client 1 by way of the Internet 3. 
The content-DB interface 24 is an interface for handling exchanges of data with a content 
DB 29 of Fig. 1. The access-control-table interface 26 is an interface for handling 

10 exchanges of data with an access control table 28 of Fig. 1. The memory is used for 
storing a WWW server program 25 and other information which are required in the 
processing carried out by the CPU 22. 

As shown in Fig. 6, the hardware configuration of the client 1 comprises a 
display unit 1 1, an input unit 12, a communication-network interface 13, a temporary 

15 storage unit (memory) for storing a WWW browser program 16, a central processing unit 
(CPU) 14 and a storage unit 15 which are connected to each other by a bus 17. 

Display unit 1 1 is used for displaying a message and other information to 
the user utilizing the client 1 . The display unit 1 1 is implemented typically by a liquid- 
crystal display device or a CRT. Input unit 12 is used by the user for entering data, an 

20 electronic message and other information, for example. The input unit 12 is implemented 
by components such as a keyboard and a mouse. The communication-network interface 
13 is an interface for handling exchanges of data with the WWW server 2 by way of the 
Internet 3. Storage unit 15 is used for permanently storing programs and data used in the 
client 1. The storage unit 15 is implemented typically by a hard disc and a floppy disc. 

25 The CPU 14 executes overall control of the components comprising the client 1 and 

carries out processing. The memory is used for storing the WWW browser program 16 
and other information which are required in the processing carried out by the CPU 14. 

The WWW browser program 16 transmits a request for contents to the 
WWW server 2 by way of the Internet 3 and displays the contents received from the 

30 WWW server 2 on the display unit 11. In addition, the WWW browser program 16 also 
transmits data entered via the input unit 12 to the WWW server 2. 

The WWW server 2 is a computer on the service rendering side. The 
storage unit connected to the processing unit is used for storing the access control table 28 
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and the content DB (data base) 29. The access control table 28 is used for storing 
authentication information for controlling accesses to contents. The content DB 29 is a 
DB for storing contents to be presented to the client 1. Contents are display screen 
information stored in the WWW server 2 to be presented to the client 1. Contents can 
5 include text data, image data, a still picture or a moving picture. The WWW server 
program 25 is stored in the memory employed in the WWW server 2 and is executed by 
the processing unit of WWW server 2. WWW server program 25 transmits contents to 
the client 1 in accordance with a request made by the client 1. In addition, the WWW 
server program 25 stores authentication information in the access control table 28 for 

10 each request for contents and authenticates data received from the client 1 , which is 
relevant to the contents. 

It should be noted that the WWW server program 25 includes an electronic 
authentication function according to the present invention. WWW server program 25 is 
stored in a storage medium and then transferred to the memory employed in the WWW 

1 5 server 2 through a drive unit also employed in the WWW server 2 for execution by the 
processing unit of the WWW server 2. As an alternative, the WWW server program 25 is 
received by the WWW server 2 from the network and then stored into the memory of the 
WWW server 2 to be executed by the processing unit employed in the WWW server 2. 
The WWW browser program 16 includes an electronic authentication function according 

20 to the present invention. The WWW browser program 16 is stored in a storage medium 
and then transferred to the memory employed in the client 1 through a drive unit also 
employed in the client 1 for execution by the processing unit of the client 1. As an 
alternative, the WWW browser program 16 is received by the client 1 from the network 
and then stored into the memory of the client 1 to be executed by the processing unit 

25 employed in the client 1 . 

Fig. 2 is a diagram showing the data format of each access information 
record stored in the access control table 28. As shown in the figure, the record comprises 
an access number 41, a public key 42, a private key 43 and a cataloging date and time 44. 
The access number 41 is created for each access to contents and associated with the 

30 access to the contents. The public key 42 is an encryption key generated for protecting 
the confidentiality of data received from the client 1 . The private key 43 is a decryption 
key for decrypting an encrypted text obtained as a result of encryption using the public 
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key 42. Much like the access number 41, the public key 42 and the private key 43 are 
generated for each access to contents. 

The cataloging date and time 44 is a date and a time at which the access 
information record is cataloged in the access control table 28. 
5 Figs. 3 and 4 illustrate a flowchart showing the flow of processing carried 

out by execution of the WWW browser program 16 stored in the client 1 and the WWW 
server program 25 stored in the WWW server 2. As shown in Fig. 3, the flowchart begins 
with a step 51 at which the WWW browser program 16 transmits a request for contents to 
the WWW server 2. Then, at a step 52, the WWW server program 25 receives the request 

1 0 for contents. Subsequently, at a step 53, a random number is generated to be used as an 
access number. Then, at a step 54, a public key and a corresponding private key are 
generated in accordance with a public key encryption system. Subsequently, at a step 55, 
the content DB 29 is searched for the requested contents. Then, at a step 56, the access 
number generated at the step 53 and the public key generated at the step 54 are embedded 

15 in the contents by using a digital watermark technology for making the key invisible to 
the user. As a position of the contents at which these pieces of information are 
embedded, it is desirable to provide a rectangular area including a specific mark such as 
an Internet mark or a logo mark in order to make positioning convenient. In addition, it is 
desirable to embed the information in a concentrated picture area in order to make the 

20 digital watermark technology easy to apply. Subsequently, at a step 57, the access 

number 41 generated at the step 53, the public key 42 and the private key 43 generated at 
the step 54 and an additional cataloging date and time 44 are cataloged in the access 
control table 28 as a new access information record. Then, at a step 58, the contents 
including the authentication information embedded therein as described above are 

25 transmitted to the client 1. 

Subsequently, the WWW browser program 16 receives the contents at a 
step 59 and displays them on the display unit 1 1 at a step 60. While the displayed 
contents are visible to the user, the access number and the public key embedded in the 
contents are not displayed so that the user is not capable of recognizing the number and 

30 the key visually. As a representative example of contents, the contents can include image 
information of items in a catalogue for an electronic commerce application, from which a 
user can select a favorite item. 



Then, at a step 61, when data such as personal information, typically 
including an address to which a product is to be delivered is entered via the input unit 12, 
the flow of the processing continues as illustrated by the flowchart shown in Fig. 4. As 
shown in the figure, the flowchart begins with a step 62 at which the WWW browser 
5 program 16 identifies the position of the embedded digital watermark on the contents and 
fetches the embedded access number and the embedded public key. Then, at a step 63, 
the input data is encrypted by using the public key to create an electronic message. 
Subsequently, at a step 64, the access number is added to the electronic message which is 
then transmitted to the WWW server 2 along with the access number. Even though the 

10 access number can also be encrypted, such encryption is not required since its degree of 
confidentiality is low. 

Subsequently, the WWW server program 25 receives this electronic 
message at a step 65 and searches the access control table 28 for a record indicated by the 
access number included in the electronic message at a step 66. Then, the result of the 

15 search is examined at a step 67 and, if the outcome of the examination carried out at the 
step 67 is YES, indicating that the access information record was found, the server 
program authenticates the legitimacy of access, and the processing continues at a step 68. 
At step 68, an encrypted portion of the electronic message is decrypted by using the 
private key. Otherwise, if the outcome of the examination carried out at the step 67 is 

20 NO, indicating that the access information record was not found, the processing continues 
at a step 69, at which the received electronic message is discarded. From the step 68, the 
flow of the processing proceeds to a step 70 to form a judgment as to whether or not the 
encrypted portion of the electronic message could be decrypted into data with a meaning 
expected in advance. If the outcome of the judgment formed at the step 70 is YES, 

25 indicating that the encrypted portion could be decrypted, the processing continues to a 
step 71, at which the access information record is deleted from the access control table 
28. Then, at a step 72, subsequent processing is carried out on the basis of the input data. 
In the case of electronic commerce applications, the inputted selection information can be 
transmitted to an Internet site where the item can be processed. Otherwise, if the outcome 

30 of the judgment formed at the step 70 is NO, indicating that the encrypted portion could 
not be decrypted, the flow of the processing continues to a step 73, at which the received 
electronic message is discarded. Then, at the step 74, the access information record is 
deleted from the access control table 28. Subsequent processing is not carried out. 
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Generally, the deleting of the access information record means that the record is 
invalidated. In this example, access information is deleted from access control table 28. 
Alternatively, access number 41, its corresponding public key 42, secret key 43, and 
registering date and time 44, may have an effective flag, which can be set and reset 
5 according to whether the access information record is valid or invalid. 

It is also worth noting that the WWW server 2 periodically checks the 
cataloging date and time 44 of each access information record cataloged in the access 
control table 28. In the event of a time-out where time of a predetermined length has 
lapsed since the time indicated by the cataloging date and time 44, the access information 

10 record is deleted from the access control table 28. In the case of a time-out, 

authentication of an access to contents accompanied by no response expressed by input 
data is halted. When access is not permitted, the display of client 1 can show that access 
has been denied because of an illegal access attempt. Such a display can provide to users 
an indication of a reason that access has been denied. 

15 According to a specific embodiment described above, contents transmitted 

to the client 1 include an embedded access number which is generated for each access to 
contents. Thus, even if the contents are copied and data entered in response to the 
contents is transmitted to the WWW server 2, the access number will have already been 
invalidated by the WWW server 2, so that the data transmitted to the WWW server 2 will 

20 also be invalid. In addition, even if an access number is illegally intercepted in the course 
of the transmission of an electronic message from the client 1 to the WWW server 2 by 
way of the Internet 3, the access number will be invalidated in an attempt to reuse the 
number. In addition, even if the user of the client 1 is capable of decoding an access 
number embedded in contents, the number can not be reused for other purposes anyway. 

25 In addition, according to a specific embodiment described above, a public 

key that can be used only once is embedded in contents transmitted to the client 1 to 
protect the confidentiality of data such as personal information transmitted from the client 
1 to the WWW server 2. Thus, even if information encrypted by using the public key is 
illegally intercepted, it will be impossible to reuse the information. As a result, an 

30 unauthorized user is not capable of illegally intercepting personal information of another 
user in order to pretend to be the other user. It is also possible to avoid a wrongdoing 
such as falsification of information such as the amount of money or the quantity of 
products described on an order sheet. 
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As described above, the digital watermark technology is adopted in a 
specific embodiment. The adoption of the digital watermark technology can serve to 
conceal an access number and a public key by using a digital watermark technology since 
an access number and a public key are not substantive contents and, hence, do not have to 
5 be revealed to the user. Thus, there is especially no confidentiality in the digital 
watermark technology itself. Therefore, the digital watermark system can be widely 
applied to a large number of content packages. It is desirable to provide a system for 
embedding a watermark in a simple and reliable way so that the system can be applied as 
a common system to the WWW browser program 16 and the WWW server program 25. 

10 In addition, in the embodiment described above, an access number is 

generated by the WWW server 2 as a random number. It should be noted, however, that 
an access number can also be generated as a serial number or a consecutive number so 
that the access number can be used for other purposes such as protection of the copyright 
of contents. If an access number is generated as a consecutive number, however, there is 

1 5 danger of an access number's being predicted in next generation of future contents on the 
basis of a result of decoding an access number embedded in present contents. As another 
alternative, a hash value is found from a number of digits in an access number by using a 
hash function, and the hash value of the access number is embedded in contents. In this 
case, the hash value is cataloged in the field for the access number 41 in an access 

20 information record and, at the step 66, the access control table 28 is searched for an 
access information record indicated by a hash number. 

As described above, in a specific embodiment, response data is encrypted 
by using a public key which is generated along with an identifier of contents so as to 
prevent the response data from being intercepted illegally. 

25 When personal information, transaction data and the like are transmitted 

from the client 1 to the WWW server 2 in response to contents transmitted from the 
WWW server 2 to the client 1 in a transaction such as Internet shopping or an electronic 
business transaction using the Internet, the present invention allows the personal 
information, the transaction data and the like to be verified as input data for a legal access 

30 to the contents. In addition, the present invention is also capable of preventing double 
transaction data from being transmitted by issuing two or more orders for one order form 
by user's mistake. 
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As described above, according to the present invention, a content identifier 
appended to contents transmitted by a server to a client accompanies data transmitted by 
the client to the server in response to the contents. Thus, transmission of data in response 
to contents in an access to the contents can be limited to one-time transmission to exclude 
5 disallowed response data using a copy of the contents and illegal response data intended 
to falsify information. As a result, the present invention is capable of proving that input 
data is correct data transmitted as a response to contents in an access to the contents. 
Although the above has generally described the present invention according to specific 
systems, the present invention has a much broader range of applicability. 

10 The specific embodiments described herein are intended to be merely 

illustrative and not limiting of the many embodiments, variations, modifications, and 
alternatives achievable by one of ordinary skill in the art. Further, the diagrams used 
herein are merely illustrations and should not limit the scope of the claims herein. One of 
ordinary skill in the art would recognize other variations, modifications, and alternatives. 

15 Thus, it is intended that the foregoing description be given the broadest possible 
construction and be limited only by the following claims. 

The preceding has been a description of the preferred embodiment of the 
invention. It will be appreciated that deviations and modifications can be made without 
departing from the scope of the invention, which is defined by the appended claims. 
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What is claimed is: 



2 



1 



1 . An electronic authentication method comprising: 
generating an identifier for contents in a first information processing 



3 apparatus; 



4 



5 



storing said identifier in a storage unit; 

transmitting said contents and said identifier to a second information 



6 processing apparatus; 

7 inputting data for said contents in said second information processing 

8 apparatus; 

9 transmitting said input data and said identifier from said second 

10 information apparatus to said first information apparatus; and 

1 1 authenticating legitimacy of said input data and invalidating said stored 

12 identifier if said received identifier matches said identifier in said storage unit in said first 

1 3 information processing apparatus. 

1 2. An electronic authentication method according to claim 1, wherein 

2 in said first information processing apparatus, said identifier is embedded in said contents 

3 prior to transmission of said contents to said second information processing apparatus. 

1 3. An electronic authentication method according to claim 2, said 

2 method further comprising: 

3 embedding an encryption key in said contents in said first information 

4 processing apparatus prior to transmission of said contents to said second information 

5 processing apparatus; 

6 encrypting said input data in said second processing apparatus by using 

7 said encryption key prior to transmission of said input data to said first information 

8 processing apparatus; and 

9 decrypting said received input data in said first information processing 

10 apparatus. 

1 4. An electronic authentication method according to claim 3, wherein: 

2 said embedded encryption key is a public key; said received input data is decrypted using 

3 a private key associated with said public key; and said public key and said private key are 

4 generated in said first information processing apparatus. 
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1 5. An information processing method comprising: 

2 generating an identifier for contents; 

3 storing said identifier; 

4 transmitting said contents and said identifier to an external apparatus; 

5 receiving data from said external apparatus; 

6 acquiring an identifier for said contents; and 

7 carrying out processing based on said received data and invalidating said 

8 stored identifier if said acquired identifier matches said stored identifier. 

1 6. An information processing method according to claim 5, wherein 

2 said identifier is embedded in said contents prior to transmission of said contents to said 

3 external apparatus. 

1 7. An information processing method according to claim 6, said 

2 method further comprising: 

3 embedding an encryption key in said contents prior to transmission of said 

4 contents to said external apparatus; and 

5 receiving an identifier encrypted by using said encryption key and 

6 decrypting said received encrypted identifier. 

1 8. An electronic authentication system comprising a first information 

2 processing apparatus and a second information processing apparatus wherein: 

3 said first information processing apparatus comprises: 

4 a means for generating an identifier for contents; 

5 a storage means for storing said identifier; and 

6 a means for transmitting said contents and said identifier to said second 

7 information processing apparatus; 

8 said second information processing apparatus comprises: 

9 a means for inputting data for said received contents; and 

10 a means for transmitting said input data and said identifier to said first 

1 1 information processing apparatus; and 

1 2 there is further provided a processing means for authenticating legitimacy 

1 3 of said input data received by said first information processing apparatus and invalidating 
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14 said stored identifier if said identifier received by said first information processing 

1 5 apparatus matches said identifier stored in said storage means. 

1 9. An electronic authentication system according to claim 8, wherein 

2 said first information processing apparatus further includes an embedding means for 

3 embedding said identifier in said contents; and said first information processing apparatus 

4 transmits said contents including said embedded identifier to said second information 

5 processing apparatus. 

1 10. An electronic authentication system according to claim 9, wherein 

2 said first information processing apparatus transmits said contents, said contents further 

3 including an embedded encryption key, to said second information processing apparatus; 

4 and said first information processing apparatus further comprises a reception means for 

5 receiving an identifier encrypted by using said encryption key and decrypting said 

6 encrypted identifier. 

1 1 1. An information processing apparatus comprising: 

2 a generation means for generating an identifier for contents; 

3 a storage means for storing said identifier; 

4 a transmission means for transmitting said contents and said identifier to 

5 an external apparatus; 

6 a reception means for receiving data from said external apparatus; 

7 an acquirement means for acquiring an identifier for said contents from 

8 said received data; and 

9 a processing means for carrying out processing based on said received data 

10 and invalidating said identifier stored in said storage means if said acquired identifier 

1 1 matches said stored identifier. 

1 12. An information processing apparatus according to claim 11, said 

2 apparatus further comprising an embedding means for embedding said identifier in said 

3 contents, wherein said transmission means transmits said contents including said 

4 embedded identifier to said external apparatus. 

1 13. An information processing apparatus according to claim 12, 

2 wherein said transmission means transmits said contents further including said embedded 
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3 encryption key to said external apparatus; and there is further provided a reception means 

4 for receiving an identifier encrypted by using said encryption key and decrypting said 

5 received encrypted identifier. 

1 14. An information processing apparatus comprising: 

2 a contents requesting means for requesting an external information 

3 processing apparatus to transmit contents; 

4 a reception means for receiving said requested contents and an identifier 

5 embedded in said contents; 

6 an extraction means for extracting said identifier from said contents; 

7 an input means for inputting data for said contents; and 

8 a transmission means for transmitting said input data and said identifier to 

9 said external information processing apparatus. 

1 15. An information processing apparatus according to claim 14, said 

2 apparatus further comprising an encryption means for encrypting said input data by using 

3 an encryption key additionally embedded in said contents received by said reception 

4 means. 

1 16. A storage medium for storing information readable by a computer, 

2 said medium characterized in that said information includes: 

3 a generation function for generating an identifier for contents; 

4 a storage function for storing said generated identifier; 

5 a transmission function for transmitting said contents and said identifier to 

6 an external apparatus; 

7 a reception function for receiving data from said external apparatus; 

8 an acquirement function for acquiring an identifier for said contents from 

9 said received data; and 

10 a processing function for authenticating legitimacy of said received data 

1 1 and invalidating said stored identifier if said acquired identifier matches said stored 

12 identifier. 

1 1 7. A storage medium for storing information readable by a computer 

2 according to claim 16, said medium characterized in that said information further has a 

3 function for embedding said identifier in said contents, wherein said transmission 
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4 function transmits said contents including said embedded identifier to said external 

5 apparatus. 

1 1 8. A storage medium for storing information readable by a computer 

2 according to claim 17, said medium characterized in that: said transmission function 

3 transmits said contents further including said embedded encryption key to said external 

4 apparatus; and said information further includes a function for receiving said data 

5 encrypted by using said encryption key and decrypting said received encrypted data. 

1 19. A storage medium for storing information readable by a computer, 

2 said medium characterized in that said information includes: 

3 a contents requesting function for requesting an external information 

4 processing apparatus to transmit contents; 

5 a reception function for receiving said requested contents and an identifier 

6 embedded in said contents; 

7 an extraction function for extracting said identifier from said contents; 

8 an input function for inputting data for said contents; and 

9 a transmission function for transmitting said input data and said identifier 
10 to said external information processing apparatus. 

1 20. A storage medium for storing information readable by a computer 

2 according to claim 19, said medium characterized in that said information further includes 

3 a function for encrypting said input data by using an encryption key additionally 

4 embedded in said contents received by said reception function. 

1 21. An electronic authentication method comprising: 

2 generating an identifier for contents in a first information processing 

3 apparatus; 

4 driving said first information processing apparatus to store said identifier 

5 and the present time as a storage time in a storage unit; 

6 transmitting said contents and said identifier to a second information 

7 processing apparatus; 

8 inputting data for said contents received by said second information 

9 processing apparatus in said second information processing apparatus; 
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10 transmitting said input data and said identifier from said second 

1 1 information processing apparatus to said first information processing apparatus; and 

12 invalidating said identifier stored in said storage unit if said identifier 

13 received by said first information processing apparatus is not stored in said storage unit or 

14 a time of a predetermined length has lapsed since said storage time stored in said storage 

15 unit. 

1 22. An electronic authentication method, comprising: 

2 generating an identifier for an access to contents in a first information 

3 processing apparatus; 

4 storing said identifier in a storage unit; 

5 transmitting said contents and said identifier to a second information 

6 processing apparatus; 

7 inputting data for said contents received by said second information 

8 processing apparatus in said second information processing apparatus; 

9 transmitting said input data and said identifier from said second 

10 information processing apparatus to said first information processing apparatus; and 

1 1 validating said input data only for this transaction if said identifier 

12 received by said first information processing apparatus matches said identifier stored in 

13 said storage unit. 

1 23. A storage medium for storing information readable by a computer, 

2 said medium characterized in that said information includes: 

3 a generation function for generating an identifier for contents; 

4 a storage function for storing said generated identifier in a storage means; 

5 an acquirement function for acquiring an identifier for said contents from 

6 said data received from an external apparatus; and 

7 a processing function for carrying out processing based on said received 

8 data and invalidating said identifier stored in said storage means if said acquired identifier 

9 matches said stored identifier. 

1 24. An authentication method in a system in which a first computer 

2 making a request for a service is connected to a second computer rendering services via a 

3 network, requested contents being transmitted from the second computer to the first 
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4 computer, data being transmitted from the first computer to the second computer 

5 associated with the contents, said method comprising: 

6 generating at the second computer an access number for accessing the 

7 contents and cataloging the access number in a storage unit; 

8 embedding the access number in the contents so that the access number is 

9 invisible and transmitting the contents to the first computer; 

10 displaying the contents at the first computer; 

1 1 adding the access number fetched from the contents to data inputted 

12 associated with the contents and transmitting the inputted data to the second computer; 

13 and 

14 authenticating validity at the second computer of the received data when 

15 the received access number has been cataloged and invalidating the cataloged access 

16 number. 

1 25. An authentication method according to claim 24, wherein the 

2 second computer generates a public key and a private key for accessing the contents and 

3 catalogs the public key and the private key in the storage unit, embeds the public key in 

4 the contents so that the public key is invisible and transmits the contents to the first 

5 computer, allows the first computer to encrypt data on inputted associated with the 

6 contents by the public key fetched from the contents and transmit the data to the second 

7 computer, and decrypt the received data by the public key cataloged when the received 

8 access number has been cataloged. 

1 26. A storage medium for storing a program which can be read by a 

2 computer, wherein the program has a function of generating an access number for 

3 accessing contents requested from the outside, a function of cataloging the generated 



4 access number in a storage unit, a function of embedding the access number in the 

5 contents so that the access number is invisible and transmitting the contents to the 

6 outside, a function of receiving data to which the access number is added from the 

7 outside, and a function of authenticating validity on the received data when the received 

8 access number has been cataloged and invalidating the cataloged access number. 

1 27. A storage medium for storing a program which can be read by a 

2 computer according to claim 26, wherein the program has a function of generating a 
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3 public key and a private key for accessing the contents, a function of cataloging the public 

4 key and the private key in the storage unit, a function of embedding the public key and 

5 the private key in the contents so that the public key is invisible and transmits the contents 

6 to the outside, a function of receiving data encrypted by the public key from the outside, 

7 and a function of decrypting the received data by the public key cataloged when the 

8 received access number has been cataloged. 

1 28. A storage medium for storing a program which can be read by a 

2 computer, wherein the program has a function of displaying contents received from the 

3 outside, a function of receiving data input associated with the contents, a function of 

4 fetching an access number embedded in the contents so that the access number is 

5 invisible, and a function of adding the access number to the inputted data and transmitting 

6 the data to the outside. 

1 29. A server apparatus comprising: 

2 a processor; 

3 a storage device; 

4 a network interface; and a bus interconnecting said processor, said storage 

5 device and said network interface; 

6 wherein said processor generates an identifier for contents and stores said 

7 identifier into said storage device; and wherein said processor transmits said contents and 

8 said identifier to an external apparatus via said network interface; and wherein said 

9 processor receives data from said external apparatus via said network interface; and 

10 thereupon acquires from said data an identifier for said contents from said received data; 

1 1 and wherein said processor performs processing based on said received data and 

12 invalidates said identifier stored in said storage means if said acquired identifier matches 

1 3 said stored identifier. 

1 30. A server apparatus according to claim 29, wherein in said 

2 apparatus, said processor further embeds said identifier in said contents; and wherein said 

3 processor transmits said contents including said embedded identifier to said external 

4 apparatus. 

1 3 1 . A server apparatus according to claim 30, wherein in said 

2 apparatus, said processor further transmits said contents, said contents further including 
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3 said embedded encryption key, to said external apparatus; and wherein said apparatus 

4 receives an identifier encrypted using said encryption key; and thereupon decrypts said 

5 received encrypted identifier. 

1 32. A client apparatus comprising: 

2 a processor; 

3 an input device; 

4 a network interface; and a bus interconnecting said processor, said input 

5 device and said network interface; 

6 wherein said processor requests an external information processing 



7 apparatus to transmit contents via said network interface; and wherein said processor 

8 receives said requested contents and an identifier embedded in said contents; and 

9 thereupon, said processor extracts said identifier from said contents; and wherein said 

10 processor receives input data for said contents from said input device; and wherein said 

1 1 processor transmits said input data and said identifier to said external information 

12 processing apparatus via said network interface. 



1 33. A client apparatus according to claim 32, wherein in said 

2 apparatus, said processor further encrypts said input data using an encryption key 

3 additionally embedded in said contents received via said network interface. 

1 34. An information processing apparatus comprising: 

2 a means for acquiring a contents from an external information processing 

3 apparatus; 

4 a means for receiving the contents; 

5 a means for inputting a data with respect to the contents; 

6 a means for sending the inputted data and an identifier of the contents to 

7 the external information processing apparatus; and 

8 a means for displaying that an access is impossible if the contents is 

9 accessed at least once. 
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ELECTRONIC AUTHENTICATION METHOD, ELECTRONIC 
AUTHENTICATION APPARATUS AND ELECTRONIC 
AUTHENTICATION STORAGE MEDIUM 

5 ABSTRACT OF THE DISCLOSURE 

According to the invention, techniques for verifying that data input as a 
response to presented contents is true input data for a content access. In a representative 
embodiment according to the present invention, there is provided an electronic 
authentication method that comprises a variety of steps, such as a step of generating an 

10 identifier for contents in a first information processing apparatus and storing the identifier 
in a storage unit. Transmitting the contents and the identifier to a second information 
processing apparatus can also be part of the method. Steps of inputting data for the 
contents in the second information processing apparatus and transmitting the input data 
and the identifier from the second information apparatus to the first information apparatus 

15 can also be included in the method. Further, the method can also include authenticating 
legitimacy of the input data and invalidating the stored identifier if the received identifier 
matches the identifier in the storage unit in the first information processing apparatus. 
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